This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft File: 2MHMikY6MVDL7AhlTmF4ANZuU-k.mft (raw, json) Hash identifier: kzyRXSv1+wHXSg8pmh0zadhJedCZBZZnv5ui2gOGuwc= Subject key identifier: 7B:7D:46:FF:77:15:23:42:3B:55:7D:35:FE:62:AC:CE:91:CE:5C:A4 Authority key identifier: D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 Certificate issuer: /CN=A91F89C1/serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Certificate serial: 06E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft Manifest number: 06D5 Signing time: Sat 20 Dec 2025 21:27:06 +0000 Manifest this update: Sat 20 Dec 2025 21:27:05 +0000 Manifest next update: Sat 27 Dec 2025 21:27:05 +0000 Files and hashes: 1: 2MHMikY6MVDL7AhlTmF4ANZuU-k.crl (hash: jXLkfA7H9+UK65424ar8LiFmSIPn8wAOJQrriYBDgus=) 2: F00A66308A9C11EB9B2E044BC4F9AE02.roa (hash: HTPqOWIyJHqMlIZAMr3y8PX5c90zicN8031Dpgoj/xo=) 3: 88A31320809211EB938F4016C4F9AE02.roa (hash: +ggMU5apLM7/E36BO1O5K0i1T6Q0H2I5abkvXaYTrxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:27:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1763 (0x6e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89C1, serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Validity Not Before: Dec 20 21:27:05 2025 GMT Not After : Dec 27 21:27:05 2025 GMT Subject: CN=694714a9-7697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:39:59:c4:3e:11:ec:79:64:c7:cc:4d:6d:4a: 66:51:23:1e:99:97:2f:76:2b:6b:01:d6:73:27:fd: d7:9d:64:8e:7a:e6:88:c9:49:ac:39:dd:f4:70:57: 58:d6:96:b9:37:8c:35:61:0b:24:06:13:cd:2c:a5: 6d:1d:13:0b:ea:ef:1c:b3:84:6e:e7:8a:c5:dd:7c: 15:bd:9d:ad:d7:75:f3:45:cf:01:3a:7a:50:ce:7a: 59:69:fe:93:b5:1d:af:44:0a:55:28:95:6f:37:05: 2e:b8:f6:bf:f9:21:04:67:f3:0f:41:e7:0e:b2:65: 44:8d:ea:66:a8:43:64:48:bc:7b:b6:28:58:d5:c3: 08:54:c1:3f:6b:52:36:1e:99:0c:31:12:b1:89:63: fd:78:dd:d9:1f:3a:75:02:85:b7:fd:4f:bb:77:25: 4e:a4:db:c0:19:8f:25:03:ca:d5:55:bc:bf:9d:f9: b6:bf:21:07:d1:26:c8:7d:c7:31:5d:1e:4f:24:b0: f7:8b:42:e4:d1:b7:37:07:df:ed:12:39:f1:a7:2c: 09:1e:02:2f:68:42:4c:71:13:98:83:6e:95:84:f9: 80:5a:79:c0:81:8a:95:f7:fc:94:c1:32:77:34:56: 01:35:9a:d6:3a:79:89:92:8d:b8:2d:b5:7a:69:ef: 98:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:7D:46:FF:77:15:23:42:3B:55:7D:35:FE:62:AC:CE:91:CE:5C:A4 X509v3 Authority Key Identifier: keyid:D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:6c:fb:1b:0a:8e:0c:34:05:64:40:94:fb:a8:1b:f2:49:db: 9f:db:c2:e5:f5:a7:d3:e7:2f:68:84:23:25:a6:05:34:ea:ba: 20:8b:0b:d0:c7:25:95:c8:48:1b:e3:59:81:c0:1c:c2:56:cb: 3f:07:24:98:c4:8b:e6:e4:a7:52:9f:7b:d7:d8:a9:6a:02:32: 24:37:3d:81:8a:c3:cc:3b:68:d8:bf:d9:0b:41:e4:e8:36:9d: f0:58:22:66:24:11:ee:5d:16:89:64:ca:8a:e6:22:d3:87:58: c1:60:7f:ad:1f:5f:d8:b3:46:ad:05:4e:97:6e:ad:ea:c5:1e: bd:bf:e9:0d:48:90:8d:3f:d9:f6:c8:80:f5:90:da:6f:d9:92: 93:c5:c7:29:5e:a2:d0:3d:37:c5:23:b3:ef:f6:77:0a:63:4f: 85:85:66:60:e1:66:b6:87:ca:f5:f6:49:0c:7c:fb:5a:6c:1e: 64:34:1e:00:a2:8a:00:98:bd:55:03:92:6e:e9:d8:5c:34:b4: 7a:69:1b:1c:c4:e7:32:65:e5:90:27:e0:50:80:45:1c:64:1c: b1:6b:3b:02:30:9a:9d:35:a4:21:db:d1:95:8f:e6:1a:be:23: f9:30:ed:6d:1e:9b:76:67:93:90:33:d1:1b:35:4a:f4:67:da: 16:51:5b:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QzExMTAvBgNVBAUTKEQ4QzFDQzhBNDYzQTMxNTBDQkVDMDg2NTRFNjE3ODAw RDY2RTUzRTkwHhcNMjUxMjIwMjEyNzA1WhcNMjUxMjI3MjEyNzA1WjAYMRYwFAYD VQQDDA02OTQ3MTRhOS03Njk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzlZxD4R7Hlkx8xNbUpmUSMemZcvditrAdZzJ/3XnWSOeuaIyUmsOd30cFdY 1pa5N4w1YQskBhPNLKVtHRML6u8cs4Ru54rF3XwVvZ2t13XzRc8BOnpQznpZaf6T tR2vRApVKJVvNwUuuPa/+SEEZ/MPQecOsmVEjepmqENkSLx7tihY1cMIVME/a1I2 HpkMMRKxiWP9eN3ZHzp1AoW3/U+7dyVOpNvAGY8lA8rVVby/nfm2vyEH0SbIfccx XR5PJLD3i0Lk0bc3B9/tEjnxpywJHgIvaEJMcROYg26VhPmAWnnAgYqV9/yUwTJ3 NFYBNZrWOnmJko24LbV6ae+Y0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHt9Rv93 FSNCO1V9Nf5irM6RzlykMB8GA1UdIwQYMBaAFNjBzIpGOjFQy+wIZU5heADWblPp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlDMS8wQTNGMjY5Qzgw ODYxMUVCQjRDNkQxMTZDNEY5QUUwMi8yTUhNaWtZNk1WREw3QWhsVG1GNEFOWnVV LWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJNSE1pa1k2TVZETDdBaGxUbUY0QU5adVUtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlDMS8wQTNGMjY5QzgwODYxMUVCQjRDNkQxMTZDNEY5QUUwMi8yTUhNaWtZNk1W REw3QWhsVG1GNEFOWnVVLWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKbPsbCo4MNAVkQJT7qBvySduf28Ll9afT5y9ohCMlpgU06rogiwvQ xyWVyEgb41mBwBzCVss/BySYxIvm5KdSn3vX2KlqAjIkNz2BisPMO2jYv9kLQeTo Np3wWCJmJBHuXRaJZMqK5iLTh1jBYH+tH1/Ys0atBU6Xbq3qxR69v+kNSJCNP9n2 yID1kNpv2ZKTxccpXqLQPTfFI7Pv9ncKY0+FhWZg4Wa2h8r19kkMfPtabB5kNB4A oooAmL1VA5Ju6dhcNLR6aRscxOcyZeWQJ+BQgEUcZByxazsCMJqdNaQh29GVj+Ya viP5MO1tHpt2Z5OQM9EbNUr0Z9oWUVuQ -----END CERTIFICATE-----Generated at Sun Dec 21 14:42:25 2025 by rpki-client